This Story is Archived
Hacking Into Blogs - Is Your Blog Safe? »
Posted by: Webfeed 2 years agoThere is a flaw in many blogging platforms, including WordPress, that would allow others to gain access to post and gain administrative privleges. Over the weekend, Jason Schramm was able to exploit a Host Overflow Application eXception vulnerability in RSS.
Read Full Story at webfeedcentral.com »
Submitted By:
Webfeed
I'll play Devil's advocate for both sides of any story. Interests include (but are not limited to) Technology, Mass Media (new & old), Politics ...
This Story is Archived and Commenting is Closed
Comments: 25
-
PaganGodess
Oct. 2, 2006, 7:23 p.m.So, next time I get drunk, open up a can of loud mouth and really enrage everyone I'll blame it on the "hacker" who stole my identity! = ] Hmmmm . . . . hope they fix this in a hurry!
-
STONERS
Oct. 2, 2006, 8:07 p.m.Well isnt this some s**t!!!!Hope for a quick fix...Hello PaganGodess..:}:}
-
not2needy
Oct. 2, 2006, 9:38 p.m.Hmmm, Gives us something to think about when we spout something offensive in these threads that may peeeee someone off.
-
rvdad
Oct. 3, 2006, 7:47 a.m.Mark Woodman has more.
http://inkblots.markwoodman.com/2006/10/03/websites-hacked-through-metaweblog-api/
-
michaelgray
Oct. 3, 2006, 9:26 a.m.why not give a little help in fixing the problem instead running around putting up digital graffiti.
-
rvdad
Oct. 3, 2006, 9:52 a.m.We are currently working on Wordpress plug-in that fixes the problem. And there already is a Typepad widget in-testing called Shield that fixes the problem.
-
rvdad
Oct. 3, 2006, 10:26 a.m.ok, I just confirmed there's a patch for Wordpress. I'll post the link in a second. But understand, my own website has been down because of the traffic, so be patient.
-
Webreader
Oct. 3, 2006, 11 a.m.This goes into the "Isn't anything safe anymore?" file. This story is full of "geektalk" which is way over my head, therefore I would LUV it if someone could translate this for one who is simply a user and sampler of opinions. I have the utmost respect for anyone who can handle the complex world of our sci-fi, now sci-fact communication system. Go geeks! but we collectively need to make 'honesty' hip again, because in the long run everyone wins, and humankind can make even more progress.
-
Webreader
Oct. 3, 2006, 11:03 a.m.Does this mean that when I read something submitted by, say, "jblogger," that it isn't necessarily jblogger who wrote it? Can someone hijack my 'handle' and post some awful invective to get me in trouble?
-
rvdad
Oct. 3, 2006, 11:38 a.m.OK, here's the Wordpress patch
http://www.jasonblogs.com/2006/10/03/patch-for-host-overflow-application-exception/
-
-
-
-
-
-
-
Eagle_Eye
Oct. 5, 2006, 9:12 p.m.If they can steal you on paper then they can steal you in cyberspace!!
Good information, but a bit to technical for my "need to be user friendly" mind.
-
dtress1d
Oct. 10, 2006, 1:01 p.m.I agree, most of the applications that can and are gotten to via the internet can and are available for those who know how.
There are ways of making this less easy, but most companies do not use these methods.
Sometimes it is lack of knowledge, sometimes lack of expertise, sometimes lack of money, but mainly just that they don't care!
-
topperjax
Oct. 13, 2006, 1:51 a.m.I don't really think that it's that they don't care, it's more that it seems that whether we care or not, if a hacker wants into my system, he'll get there, no matter what safe guards I have up. That's the part that I hate the most.
-
-
-
-
The first 23 comments are shown. Show all 25 comments »
Got a Story?
